A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Canonical: https://koopmijnhuis.nl/.well-known/security.txt
Contact: mailto:security@isaeus.nl
Preferred-Languages: en,nl
Encryption: https://isaeus.nl/pgp-key.txt
Expires: 2026-05-03T03:49:57Z

-----BEGIN PGP SIGNATURE-----
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=pA28
-----END PGP SIGNATURE-----